Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

11/17/2014
07:30 PM
Connect Directly
Google+
Twitter
RSS
E-Mail
50%
50%

The Year Of The Retailer Data Breach

This year's wave of attacks was more dramatic in its widespread scope and seemingly constant battering of more than a dozen big box chains.
Previous
1 of 14
Next

Cybercriminals found their sweet spot this past year with the retail industry, where some of the biggest big-box brand names and franchises were infiltrated by malware that helped the bad guys steal millions of credit and debit-card account numbers of shoppers. 

(Image: Sean MacEntee)

(Image: Sean MacEntee)

Data breaches are nothing new for the retail industry -- think TJX in 2005, Dave & Buster's in 2007, to name a few -- but this year's wave of attacks was different and more dramatic in its widespread scope and seemingly constant battering of big box retailers, with more than a dozen of them disclosing data breaches, including Target, Home Depot, Michael's, Dairy Queen, and most recently, Kmart. 

Target became the poster child for how not to conduct an incident response operation, with more than 40 million payment cards pilfered from its computers after ignoring security alarms from the attack and then experiencing a public disclosure disaster that ultimately resulted in the departure of its CIO and CEO.

[The next Dark Reading Radio episode on Nov. 19 at 1:00 p.m. ET (10:00 a.m. PT) features retail security experts from Mandiant and the retail industry. Read Retail Hacking: What To Expect This Holiday Season.]

So just in time for the 2014 holiday shopping season, here's a look at 13 major retailers who revealed this past year that they had suffered data breaches. Don't be suprised if a few more come forward before we ring in 2015. 

 

Kelly Jackson Higgins is Executive Editor at DarkReading.com. She is an award-winning veteran technology and business journalist with more than two decades of experience in reporting and editing for various publications, including Network Computing, Secure Enterprise ... View Full Bio

Previous
1 of 14
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
GaryG880
50%
50%
GaryG880,
User Rank: Apprentice
11/22/2014 | 8:22:49 PM
Re: So has the retail industry learned from all these high profile breaches?
One easy answer   NO!
Kelly Jackson Higgins
50%
50%
Kelly Jackson Higgins,
User Rank: Strategist
11/18/2014 | 5:03:17 PM
Re: So has the retail industry learned from all these high profile breaches?
@TomT640, that's one of the issues I will be asking our retail security experts tomorrow on Dark Reading Radio. There was a study today from BitSight that found 1/3 of retail breaches originated from their 3rd party vendors. 
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
11/18/2014 | 4:28:44 PM
Re: So has the retail industry learned from all these high profile breaches?
That's a good point, @TomT640, (not to mention that I really liked the metaphor "pulling their socks up.")

I hope you'll bring your point of view to our Dark Reading Radio show tomorrow (Wed. 11/19 at 1 pm. EST). We have a great topic Retail Hacking: What To Expect This Holiday Season, with Kelly Jackson Higgins and her guests, Nick Pelletier, senior consultant, Mandiant, and Arthur Tisi, CIO, Natural Markets Food Group. They'll be  talking about what retailers can do to keep both their customers and their transactions safe.

Here's the link to the show: http://www.darkreading.com/radio.asp?webinar_id=162

 
TomT640
50%
50%
TomT640,
User Rank: Apprentice
11/18/2014 | 12:33:48 PM
So has the retail industry learned from all these high profile breaches?
It would seem that those that were breached are 'pulling up their socks' as they say in England but that is no easy task given that a lot of these profiled breaches were down to vulnerabilities in their supply chain.  It is one thing to put your own house in order, it is more challenging to figure out what 3rd parties can and should do, in order to make you more secure.
Where Businesses Waste Endpoint Security Budgets
Kelly Sheridan, Staff Editor, Dark Reading,  7/15/2019
US Mayors Commit to Just Saying No to Ransomware
Robert Lemos, Contributing Writer,  7/16/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Now this is the worst micromanagment I've seen.
Current Issue
Building and Managing an IT Security Operations Program
As cyber threats grow, many organizations are building security operations centers (SOCs) to improve their defenses. In this Tech Digest you will learn tips on how to get the most out of a SOC in your organization - and what to do if you can't afford to build one.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2002-0390
PUBLISHED: 2019-07-21
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0639. Reason: This candidate is a reservation duplicate of CVE-2002-0639. Notes: All CVE users should reference CVE-2002-0639 instead of this candidate. All references and descriptions in this candidate have been removed to prevent ...
CVE-2018-17210
PUBLISHED: 2019-07-20
An issue was discovered in PrinterOn Central Print Services (CPS) through 4.1.4. The core components that create and launch a print job do not perform complete verification of the session cookie that is supplied to them. As a result, an attacker with guest/pseudo-guest level permissions can bypass t...
CVE-2019-12934
PUBLISHED: 2019-07-20
An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hljs_additional_css parameter.
CVE-2019-9229
PUBLISHED: 2019-07-20
An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M800B-MSBR and 800C-MSBR devices with firmware versions F7.20A to F7.20A.251. An internal interface exposed to the link-local address 169.254.254.253 allows attackers in the local network to access multiple quagga VTYs. Attackers can...
CVE-2019-12815
PUBLISHED: 2019-07-19
An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306.